nginx reverse proxy
Before configuring the nginx reverse proxy, we must first prepare two test servers, web1 and web2.
1.Install httpd
[root@web1 ~]# yum install -y httpd [root@web2 ~]# yum install -y httpd
2.Provide a test page
[root@web1 ~]# echo "<h1>web1.test.com</h1>" > /var/www/html/index.html [root@web2 ~]# echo "<h1>web2.test.com</h1>" > /var/www/html/index.html
3.Start the httpd service
[root@web1 ~]# service httpd start 正在启动 httpd: [确定] [root@web2 ~]# service httpd start 正在启动 httpd: [确定]
4.Test it
5. Briefly speaking, forward proxy and reverse proxy
(1).Forward The concept of proxy
Forward proxy, also known as the legendary proxy, works like a springboard. Simply put, I am a user and I cannot access a certain website, but I can Access a proxy server. This proxy server can access the website that I cannot access, so I first connect to the proxy server and tell it that I need the content of the website that cannot be accessed. The proxy server will retrieve it and return it to me. From the website's perspective, there is only one record when the proxy server comes to retrieve the content. Sometimes it is not known that it is the user's request, and the user's information is also hidden. This depends on whether the proxy tells the website or not.
The conclusion is that a forward proxy is a server between the client and the origin server. In order to obtain content from the origin server, the client sends a request to the proxy and specifies the target ( origin server), the proxy then forwards the request to the origin server and returns the obtained content to the client. The client must make some special settings to use the forward proxy.
(2). The concept of reverse proxy
Continue with the example:
Example user visits http://www.test. com/readme, but the readme page does not exist on www.test.com. It is secretly retrieved from another server and then returned to the user as its own content, but the user does not know it. The server corresponding to the domain name www.test.com mentioned here has a reverse proxy function.
The conclusion is that a reverse proxy is just the opposite. It is like the original server to the client, and the client does not need to make any special settings. The client sends a normal request to the content in the reverse proxy's namespace (name-space), and then the reverse proxy will determine where to forward the request (original server) and return the obtained content to the client, like these The content is its own original content.
(3). The difference between the two
In terms of usage:
The typical use of forward proxy is within the firewall The LAN client provides access to the internet. Forward proxies can also use buffering features to reduce network usage. A typical use of a reverse proxy is to provide access to a server behind a firewall to Internet users. A reverse proxy can also provide load balancing for multiple servers on the backend, or buffering for slower servers on the backend. In addition, reverse proxy can also enable advanced URL policies and management technologies, so that web pages in different web server systems exist in the same URL space at the same time.
In terms of security:
Forward proxy allows clients to access any website through it and hide the client itself, so you must take security measures to ensure that only authorized clients are Provide services. Reverse proxies are transparent to the outside world, and visitors do not know that they are accessing a proxy.
The above is the detailed content of How to configure nginx reverse proxy. For more information, please follow other related articles on the PHP Chinese website!